Ceh v8: System Hacking

Lab 8

Extracting Administrator Passwords Using LOphtCrack

LophtCrack is packed with powerful features, such as scheduling, hash extraction fro/// 64-bit Windows versions; multiprocessor algorithms, and network monitoring and decoding. It can impotf and crack U N IX passwordfiles and remote Windows machines.

Lab Scenario

Since security and compliance are high priorities for most organizations, attacks on a company or organization's computer systems take many different forms, such as spooling, smurfing, and other types of demal-of-service (DoS) attacks. These attacks are designed to harm or־ interrupt the use of your operational systems.
Password cracking is a term used to describe the penetration of a network, system, or־ resource with or־ without the use of tools to unlock a resource that has been secured with a password. in tins lab we will look at what password cracking is, why attackers do it, how they achieve their goals, and what you can do to do to protect yourself. Through an examination of several scenarios, m tins lab we describe some of the techniques they deploy and the tools that aid them in their assaults and how password crackers work both internally and externally to violate a company's infrastructure.
in order to be an expert ethical hacker and penetration tester, you must understand how to crack administrator passwords. in tins lab we crack the system user accounts using LOphtCrack.

Lab Objectives

The lab teaches you how to:

■ Use the LOphtCrack tool
■ Crack administrator passwords

Lab Environment

To earn’ out the lab you need:
■ LOphtCrack tool located at D:\CEH-Tools\CEHv8 Module 05 System
Hacking\Password Cracking Tools\LOphtCrack
■ Run tliis tool on Windows Server 2012 (host machine)
■ You can also download the latest version of LOphtCrack trom the link http: / / www.lOphtcrack.com
■ Administrative privileges to run tools
■ Follow wizard driven installation instructions
■ TCP/IP settings correctly configured and an accessible DNS server
■ Tins tool requires the user to register or you can also use the evaluation version for a limited period of time

Lab Duration

Tune: 10 Minutes

Overview of LOphtCrack

LOphtCrack provides a scoring metric to quickly assess password quality. Passwords are measured against current industry best practices and are rated as Strong, Medium, Weak, or Fail.

Lab Tasks
1. Launch the Start menu by hovering the mouse cursor to the lower left most corner of the desktop.

FIGURE 8.1: Windows Server 2012—Desktop view

2. Click the LOphtCrack6 app to open the LOphtCrack6 window

FIGURE 8.2: Windows Server 2012 — Apps

3. Launch LOphtCrack, and 111 the LOphtCrack Wizard, click Next.

FIGURE 8.3: Welcome screen of die LOphtCrack Wizard

4. Choose Retrieve from the local machine 111 the Get Encrypted Passwords wizard and click Next.

FIGURE 8.4: Selecting die password from die local machine

5. Choose Strong Password Audit from the Choose Auditing Method wizard and click Next.

FIGURE 8.5: Choose a strong password audit

6. In Pick Reporting Style, select all Display encrypted password hashes.
7. Click Next.

FIGURE 8.6: Pick Reporting Style

8. Click Finish.

FIGURE 8.7: Begin Auditing

9. LOpntcrack6 shows an Audit Completed message, Click OK.
10. Click Session options Irom the menu bar.

FIGURE 8.8: Selecting Session options

11. Auditing options For This Session window appears:
i. Select the Enabled, Crack NTLM Passwords check boxes 111 Dictionary Crack.
ii. Select the Enabled, Crack NTLM Passwords check boxes 111 Dictionary/Brute Hybrid Crack.
iii. Select the Enabled, Crack NTLM Passwords check boxes 111 Brute Force Crack.
IV.Select the Enable Brute Force Minimum Character Count check box.
v.Select the Enable Brute Force Maximum Character Count check box.

12. Click OK.